On June 19, 2012, the Court of Justice of the European Union issued a decision in a trademark case where the applicant sought registration for IP TRANSLATOR, using a class heading of “educational services” to identify the services. Prior to this decision, an applicant for trademark protection in the European Union could use a class heading under the Nice Agreement – which sets out classes for goods/services, each of which are designated by a class headings that covers an alphabetical list of goods or services – rather than listing each good or service in the application.…
U.S. and EU approaches to privacy regulation have been very different, but recent developments in the U.S. may be narrowing the gap. Recently, we hosted a seminar regarding current developments in information privacy regulation. The subjects covered and a link to the materials are provided below. Our panelists included: Dennis Hirsch, Esq., Professor at Capital University Law School, Counsel to Porter Wright, and a scholar of information privacy law; Christina Hultsch, Esq., Porter Wright International Law attorney; and Donna M. Ruscitti, Esq., Chair, Porter Wright’s Information Privacy and Data Security Practice Group. They discussed:
- How EU regulation impacts both U.S. and multi-national corporations and its practical implications to U.S. corporations
- The White House Report Released February 23, 2012 – Consumer Data Privacy in a Networked World: A Framework for Protecting Privacy and Promoting Global Innovation in the Global Digital Economy
- FTC Report Released March 26, 2012 – Protecting Consumer Privacy in an Era of Rapid Change
- Current U.S. Legislative Initiatives
- Compliance with the U.S. Safe Harbor Program and FTC enforcement actions
To download the materials from the seminar, click here.…
The EU Conference on Privacy and the Protection of Personal Data held March 19 in Washington, D.C., was a great illustration of the importance of the topic within the European Union. The conference was extremely well attended by high-level EU regulators and provided valuable insights into the respective priorities. Tangible results, however, were scarce and consisted largely of a joint statement on privacy by EU Commission Vice-President Viviane Reding and US Commerce Secretary John Bryson. The Joint Statement recognized the need for multinational cooperation to create mutual recognition frameworks that protect privacy in order to facilitate the free flow of information across borders. Both sides reaffirmed their commitment to the US-EU Safe Harbor Framework as a means to transfer data from the EU to the US.…
We recently prepared a summary of the top developments and trends in electronic discovery that came out of 2011. Given the evolving nature of this area of the law, understanding the key events from last year can help with this year’s e-discovery challenges. To see what made our list, click here.
Among the highlights:
- "Computer-assisted review" gained traction as a potential way to reduce costs and increase accuracy during document review, resulting this year in the first-known judicial opinion recognizing computer-assisted review as an acceptable method to search for relevant electronically stored information (ESI) during discovery – a development we see playing a key role in how new technology will be leveraged to address budget and timeline concerns going forward.
- Information governance and the need for strong records management policies saw increased discussion last year – a development we see leading to more businesses considering what steps they can take before litigation arises to reduce the volume of potentially discoverable ESI, particularly as new sources of ESI emerge as discovery targets.
- Discovery obligations meet data protection obligations on a global scale – The Sedona Conference® issued a timely and important resource, which we reported on, with an eye toward multinational companies facing a conflict between the requirements of U.S. discovery rules and foreign privacy laws, particularly as the European Commission has proposed a comprehensive reform of the EU’s 1995 data protection rules.
- National civil rule reform is still a ways off from happening, but many federal
The Sedona Conference® recently published the International Principles on Discovery, Disclosure & Data Protection (“International Principles”) through its Working Group 6 on International Electronic Information Management, Discovery and Disclosure. The Sedona Conference® launched Working Group 6 in 2005 to bring the most experienced attorneys, judges, privacy and compliance officers, technology-thought leaders, and academics from around the world to discuss the management, discovery, and disclosure of electronically stored information (“ESI”) involved in cross-border disputes. The publication of the International Principles comes in light of a number of U.S. court decisions over the last two years ordering the disclosure of information in U.S. litigation despite the existence of foreign privacy laws that otherwise would have prohibited such disclosure. See, e.g., EnQuip Technologies Group, Inc. v. Tycon Technoglass, S.R.L., 2010-Ohio-28, 2010 WL 53151 (Jan. 8, 2010).…
In a statement published on December 8, 2011, the Association of German Data Protection Agencies known as the “Duesseldorfer Kreis,” (“DK”) issued an opinion summarizing the minimum compliance criteria for operators of social networks in Germany:
- Opt-out solutions are insufficient, all privacy settings must be on the basis of opt-in selections
- Users must have simple access to their stored personal data
- Facial recognition features require express, confirmed consent
- No tracking profiles without the informed consent of the user
- Obligation to delete data after the termination of the membership
- Social plug-ins on the websites of German operators are not compliant with data protection laws unless they are covered by informed consent and provide the opportunity for the user to prevent the data transfer
- Social networks must protect user data through implementation of suitable privacy controls; operators must be able to demonstrate that such measures were taken
- Minors require particular protection and information regarding the processing of personal data must be easily comprehensible to them
- Social networks located outside the EEA must nominate an agent in Germany who serves as the contact person for the DPAs
The opinion, however, is not limited to this rather generic list of minimum requirements. Instead, it takes the opportunity to address two of the most pressing issues which have dominated the discussion of social networks and their commitment to data privacy over the past several months.…
The Article 29 Working Party outlined its agenda for 2012 at a recent plenary meeting in Brussels. Not surprisingly, the top priority is a new legal framework for data protection. But other topics, some of interest for US data protection developments, were discussed as well.
- Revision of the EU data protection framework: To ensure that EU data protection authorities can consistently apply the EU data protection rules, the revisions to the current Data Privacy Directive will emphasize harmonization efforts to advance the cooperation and coordination between the various authorities.
- WADA: The EU has ongoing concerns related to the current legal framework and the protection of athletes’ personal information. The EU Commission, supported by the Working Party, will provide comments to the proposed revision of WADA’s World Anti-Doping Code, which is planned for 2013.
- Cooperation with the European Network and Information Security Agency (ENISA): The Working Party and ENISA share common interests with regard to data breach notifications and will intensify their cooperation.
- EU Agency for Fundamental Rights (FRA): While the discussion addressed projects of the near future such as redress mechanisms and the publication of a Handbook on European data protection case law, FRA has long been critical of Passenger Name Record (PNR) data transmissions and a cooperation with the Working Party may suggest that the use of PNR will come under scrutiny again.
Whether the newly harmonized EU data protection rules will be a curse or a blessing for US companies doing business in the EU remains to be …
In my last entry I stressed the importance of complying with the various consent requirements hidden in European data protection laws. To prove my point and to illustrate further the high standards imposed by the German Data Protection Law, a regional German DPA (das “Unabhängige Landeszentrum für Datenschutz” in Schleswig Holstein or “ULD”) has taken aim at Facebook’s data privacy practices by sending cease and desist letters to all website operators located in the area who incorporate the “like” button and other Facebook plugins on their pages. Operators have until the end of September to deactivate these features or face up to € 50,000 in fines.…